Ping a Specific Port

Question

Astaar

Asked: 2011-05-15 06:01:05 +0800 CST2011-05-15 06:01:05 +0800 CST 2011-05-15 06:01:05 +0800 CST

IP Routing through VPN to Windows Server

772

I have the following network topology:

Remote admin network (192.168.10.0/24) I connect to using PPTP to the public IP
Remote gateway assigns an IP adress to me (192.168.10.100, for instance)
I can reach any server on the 192.168.10.0/24 subnet
I cannot reach any server on the 192.168.20.0/24 (DMZ) subnet
Note that I added a static route in Windows in order to route the traffic to 192.168.20.0/24 through the VPN's gateway (192.168.100.1):

Persistent Routes:
Network Address Netmask Gateway Address Metric
192.168.20.0 255.255.255.0 192.168.10.1 1

(sorry for poor formating)

However when I do a trace route, I can clearly see that Windows is routing the packets to my default, non VPN, gateway:

Tracing route to 192.168.20.1 over a maximum of 30 hops

1 1 ms 1 ms 1 ms my.firewall [192.168.2.1]
2 5 ms 4 ms 4 ms 192.168.1.1
3 (edited out public ip) reports: Destination net unreachable.

How can this be? Why is Windows routing to my default gateway (192.168.2.1) when I explicitely specified a different gateway for this destination subnet (192.168.20.0) ?

3 Answers

Voted

Astaar · Answer 1 · 2011-06-05T04:52:20+08:00

Best Answer

Astaar

2011-06-05T04:52:20+08:002011-06-05T04:52:20+08:00

Sorry for answering my own question but here goes.

Basically I simply had to re-add the route manually (route add 192.168.20.0 MASK 255.255.255.0 192.168.10.1). Doing this fixed the issue. Apparently, even though the route shows as "Persistent" it was not. This happens whenever I reboot. I don't know if it's a bug or simply because interface numbers can change between two reboots (both sound very doubtful but that's all I can think of).

1

john · Answer 2 · 2011-05-15T06:37:31+08:00

john

2011-05-15T06:37:31+08:002011-05-15T06:37:31+08:00

Without further info I would guess you need to provide the interface number when adding the route. For example if the vpn if is number 18 then

route -p add 192.168.20.0 mask 255.255.255.0 192.168.10.1 if 18

0

Evan Anderson · Answer 3 · 2011-05-15T08:43:03+08:00

Evan Anderson

2011-05-15T08:43:03+08:002011-05-15T08:43:03+08:00

Edit: Serves me right for writing this on my phone w/o access to a computer.

The route you're manually adding should reference the IP assigned to the local machine's PPTP interface, not the default gateway on the remote network. It's counter-intuitive, but it'll work. For a long-term solution you can use a DHCP option to push out the route.

0

IP Routing through VPN to Windows Server

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Resolve host name from IP address

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?